Bug #1024
Possible DoS attack vulnerability for multiple CTCP requests
Start date:
09/21/2010
Due date:
09/21/2010
% Done:
100%
Estimated time:
Version:
0.7-pre
OS:
Any
Description
Thanks to Jima for reporting and supporting.
History
#1 Updated by johu about 14 years ago
- Status changed from New to Resolved
- % Done changed from 0 to 100
If we receive multiple CTCP requests in one PRIVMSG we now answer with one packed NOTICE containing all CTCP replies. This fixes a possible DoS Attack rendering Quassels IRC connection useless. Upgrading is strongly recommended. Thanks to Jima for reporting and supporting.
fixed with fdec4a88